Vulnerability Scanning - CI/CD用語集の定義
Vulnerability scanning は、コード、依存関係、イメージを脆弱性データベース (CVE) と突き合わせ、既知のリスクのあるコンポーネントを CI で表面化させたりブロックしたりします。
関連ガイド
Image Scanning - CI/CD Glossary DefinitionImage scanning inspects a container image’s OS packages and libraries for known vulnerabilities and misconfig…
Dependency Scanning - CI/CD Glossary DefinitionDependency scanning checks your third-party packages against vulnerability databases, alerting CI when a know…
Attestation - CI/CD Glossary DefinitionAn attestation is a signed statement about an artifact - its provenance, scan results, or test status - that…